From owner-freebsd-hackers Wed Apr 28 16:20:22 1999 Delivered-To: freebsd-hackers@freebsd.org Received: from fep1-orange.clear.net.nz (fep1-orange.clear.net.nz [203.97.32.1]) by hub.freebsd.org (Postfix) with ESMTP id 031271545A for ; Wed, 28 Apr 1999 16:20:17 -0700 (PDT) (envelope-from jabley@buddha.clear.net.nz) Received: from buddha.clear.net.nz (buddha.clear.net.nz [192.168.24.106]) by fep1-orange.clear.net.nz (1.5/1.11) with ESMTP id LAA12188; Thu, 29 Apr 1999 11:20:15 +1200 (NZST) Received: (from jabley@localhost) by buddha.clear.net.nz (8.9.3/8.9.2) id LAA82250; Thu, 29 Apr 1999 11:20:07 +1200 (NZST) (envelope-from jabley) Date: Thu, 29 Apr 1999 11:20:07 +1200 From: Joe Abley To: Andrew Reilly Cc: Chuck Robey , John Birrell , hackers@FreeBSD.ORG, jabley@clear.co.nz Subject: Re: Adding desktop support Message-ID: <19990429112007.C81921@clear.co.nz> References: <199904280647.QAA26783@cimlogic.com.au> <19990428233131.A30171@gurney.reilly.home> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.4i In-Reply-To: <19990428233131.A30171@gurney.reilly.home>; from Andrew Reilly on Wed, Apr 28, 1999 at 11:31:31PM +1000 Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Wed, Apr 28, 1999 at 11:31:31PM +1000, Andrew Reilly wrote: > I really, really, don't like the idea of mutable state in an > application (executable). There are reasons that I log in as > me, and use executables owned by root, that I can't modify. This reminds me of another idea that sprang to mind as I wound through traffic to work this morning. Why not store a PGP signature for the executable section in a separate metadata section? All binaries could be essentially signed by root@buildhost, which ought to make routine checks for validity of Important System Binaries easier and better. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message